The core security realm of
WebLogic Server includes a default keystore configured with a key and
certificate pair, which message-level secured Web services can use to
encrypt and digitally sign SOAP message. This is useful when developing
and testing your application. However, when you move your application to
production, it is a good practice to use different key and
certificate pairs for different tasks. The following procedure shows how
to specify that the WebLogic Web services runtime use a specific key and
certificate pair (different from the default) to digitally sign SOAP
messages.

If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).

In the left
pane of the Administration Console, select your domain. This is the
top-level node of the navigation tree.

In the right pane, select Web service Security.

In the table, click the name of the Web service security
configuration for which you want to create a keystore used by SOAP
message digital signatures.

Web services programmers associate a Web service security
configuration using the @WssConfiguration JWS
annotation; the value attribute specifies the
associated configuration name. If the programmer does not specify
the value attribute, the Web service is associated
with the default security configuration:
default_wss.

Click Web Service Security > Credential
Provider.

Click New.

Enter the following values in the required fields:

Name: A name for your credential provider. This can
be anything you want.